You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@cassandra.apache.org by "Robert Stupp (JIRA)" <ji...@apache.org> on 2015/08/03 10:45:04 UTC

[jira] [Resolved] (CASSANDRA-9476) Less restrictive permissions for UDFs

     [ https://issues.apache.org/jira/browse/CASSANDRA-9476?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Robert Stupp resolved CASSANDRA-9476.
-------------------------------------
    Resolution: Duplicate

Resolving as duplicate of CASSANDRA-9892

> Less restrictive permissions for UDFs
> -------------------------------------
>
>                 Key: CASSANDRA-9476
>                 URL: https://issues.apache.org/jira/browse/CASSANDRA-9476
>             Project: Cassandra
>          Issue Type: Improvement
>            Reporter: Robert Stupp
>            Priority: Minor
>
> CASSANDRA-9402 introduces very restrictive permissions for UDFs. Being very restrictive with arbitrary executable code is generally the way to go.
> It might be necessary in some situations to raise the permissions or extend list or accessible classes on a per-function or global scope.
> Idea in CASSANDRA-9402 was to introduce a permission to allow functions without any restrictions - e.g. to introduce a CREATE UNTRUSTED permission.
> But such an "access everything everywhere" permission essentially allows access to the whole database and everything else.
> Another idea is to allow configuration of the allowed permissions and/or black/whitelisted classes.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)